GT been hit with something? [Archive] - Glock Talk

PDA

View Full Version : GT been hit with something?


MissileCop
11-01-2004, 09:33
Had this warning come up on my BlackIce Defender just now. Has never come up before. BlackIce killed it.

Anyone else getting this?

Time, Event, Intruder, Count
11/1/04 11:15:19,HTTP_Content_Disposition_DotDot,forums.glocktalk.com, 2

Glocker74
11-01-2004, 09:46
I got a couple pop ups on GT yesterday, 1st time that happened.

MissileCop
11-01-2004, 10:02
Thing that bothered me was it's showing as a high risk item on BlackIce.

Shows on the ISS site as affecting all OS's, and no way of removing the vulnerability, as of July 2004.

Sent an e-mail to Eric, to let him know about it as well.

ETA: This is what I pulled off of ISS



Content-Disposition file name directory traversal
content-disposition-directory-traversal (16757) High Risk

Description:

The Filename parameter in the Content-Disposition header field allows the sender to suggest a file name. If an application blindly accepts this file name, a file name could be crafted that would allow an attacker to save the file to a known location on the victim's hard drive.

Platforms Affected:

Various: Any operating system Any version
Remedy:

No remedy available as of July 2004.

Consequences:

Bypass Security

References:

CIAC Information Bulletin N-092, Microsoft Windows Media Player Skins Flaw at http://www.ciac.org/ciac/bulletins/n-092.shtml.
Microsoft Security Bulletin MS03-017, Flaw in Windows Media Player Skins Downloading could allow Code Execution (817787) at http://www.microsoft.com/technet/security/bulletin/ms03-017.mspx.
Standards associated with this entry:

Reported:

Jul 21, 2004

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

Copyright (c) 1994-2004 Internet Security Systems, Inc. All rights reserved worldwide.

For corrections or additions please email xforce@iss.net

Return to the main page

StoneGiant
11-01-2004, 10:17
Using Norton, ZoneAlarm, and Firefox... no popups detected on GT.

fastvfr
11-01-2004, 13:14
No popups blocked by my HW router's filters, nor found in SW logs.

Have you run a Spybot scan lately?

hapuna
11-01-2004, 16:53
No problems like the ones mentioned but I do occasionally go to a white screen with a message showing a database error and a request to refresh which never seems to do anything. I can back out but thats about it. What gives???:(

Glocker74
11-01-2004, 16:57
Over the last few days I have had periodic problems getting pages to load. Just happened now, slow as heck. I leave for a while, come back and it's OK.;b

JCM298
11-01-2004, 17:07
I just tried the 1911 Club and got an error message on every thread I tried to read. I went to the Kahr Club, read some threads. and posted to one thread with no problem.

I'm glad to hear that others are experiencing similar problems and I can relax and not assume that my "devil's device" is going weird again,

John

MissileCop
11-01-2004, 18:38
Maybe saying that something 'pop-upped' on my BlackIce wasn't the correct wording to use. There was no pop-up, just a warning on my BlackIce screen alerting me to that intrusion attempt. My bad, and apologies for any confusion.

No one said I was awake this morning. ;)

PurchGuru
11-02-2004, 20:07
There was a post by Eric recently in the "office" that he has had some problems with the SEARCH function dragging the system down. He said the system needed to be rebooted 15 times in one day due to this. He says he has it turned off for election today and will be moving old posts to a new search engine soon. All the "white" screens and hangs you mention could be due to the reboots ...